Details
-
Bug
-
Status: Open
-
Major
-
Resolution: Unresolved
-
0.8.0
-
None
-
None
Description
Upgrading from 0.7 we realised that all notebooks are listed and can be opened and can be viewed by all authenticated user. We have found that runners permission was empty in the gui and was not there as a key in notebook-authorization.json. Because of this all notebooks become readable for all authenticated users.